Shareef Taylor
Summary
Accomplished Security Control Assessor with 5 years of expertise in evaluating, testing and documenting of security controls for compliance. Experience in comprehensive security assessments, vulnerability management, and risk mitigation with relevant knowledge of NIST Standards. Adept at collaborating with cross-functional teams and communicating effectively with stakeholders and team leads. Seeking to leverage expertise in a dynamic organization with room for growth and strong leadership.
Overview
7
7
years of professional experience
3
3
Certification
Work History
Security Control Assessor/Cyber Security Analyst
12 Solutions LLC
Delaware
04.2018 - 11.2023
- Conducted security audits to identify vulnerabilities.
- Conducted system security assessments aligning with NIST 800-53 controls for federal and non-federal clients with direction towards obtaining Authorization to Operate (ATO) Package.
- Produced Security Assessment Reports (SAR) summarizing results and findings for each assessed system.
- Developed Security Assessment Plans using NIST 800-53, NIST 800-53a and NIST 800-37
- Drafted and reviewed security artifacts including, but not limited to, System Security Plans, inventories, contingency plans, security control traceability matrices, and security assessment reports.
- Reviewed and analyzed vulnerability and compliance scans, identifying and assessing risks for findings.
- Drafted and managed POA&M for authorized systems with appropriate remediation suspense dates and tracked findings until closure. If the POA&M would never be met, familiar with exceptions and waiver process as well as residual risk acceptance.
- Establish and uphold standardized procedures to support Information System Security Officers (ISSO) in the implementation of security controls for information systems.
- Continuously monitored Information Systems' security posture to maintain system and prevent increase in vulnerabilities
- Executed vulnerability scanning with Tenable Nessus and provided vulnerability report
- Reviewed and assessed seven different systems of different classification, scope, and mission and determined residual risk and mitigation methods to ensure the system was operating in it\'s most secure state.
- Provide assistance to patients, end users, and other data through HIPAA, Privacy Act and Privacy Office guidelines.
Scrum Master
Non Profit Organization (NPO)
Maryland
02.2018 - Current
- Planned Agile best practices and encouraged team cohesion, overcoming impediments, and hurdles to productivity.
- Promoting and successfully achieved cross-functional and self managing scrum teams
- Researched emerging technologies and current trends to stay knowledgeable in methods that could benefit scrum team.
- Practiced empiricism to maintain realistic timelines and direction within lifecycle of sprints
- Facilitated Scrum framework – sprint planning, daily scrums, sprint reviews, and sprint retrospectives.
- Applied agile methodology to shorten cycle time and achieve target margins.
- Collaborated with product owners, team members, technologists, and other scrum masters to define solutions and drive progress.
- Assessed Scrum maturity of team and organized and coached team to higher levels of development.
- Proactively identified and found ways to resolve issues to prevent distractions and keep projects on track.
Quality Assurance Analyst
Home Depot
Georgia
04.2015 - 06.2018
- Created and achieved product quality objectives and met product specifications.
- Reported progress, test metrics and results to project stakeholders.
- Collaborate with cross-functional teams, including SAP consultants, developers, and business analysts, to define and refine testing requirements and objectives
- Develop comprehensive test plans, test cases, and test scripts for SAP modules, ensuring maximum test coverage.
- Execute test cases and document test results, defect tracking, and resolutions.
- Conduct regression testing to validate the impact of changes on existing SAP functionality.
- Work closely with developers to reproduce, report, and verify defects, and participate in defect triage meetings.
- Facilitate UAT (User Acceptance Testing) and provide support to end users in testing SAP applications.
- Maintain test documentation, including test plans, test cases, and test data.
- Provide training and guidance to team members on SAP testing best practices.
Education
Associate of Science - Cyber Security
Washington College
Washington, DC08.2018
Skills
- 5 years experience in Cybersecurity, Information Technology, and Risk Management
- Data Security
- Critical Thinking Skills
- Risk Management Framework (RMF)
- Risk Assessment and Mitigation
- Expert knowledge of NIST/FISMA requirements and policy (NIST SP 800-53, 53A Rev 4 and 37)
- Vulnerability Management
- Collaboration with colleagues and stakeholders
- Ability to adapt in a fast paced and time sensitive environment
- Strong oral and written communication
- Experienced in vulnerability management and compliance regulation
- Security Awareness Training
Certification
- CompTIA Security+ Certified
- Amazon Web Services Certified Developer
- Professional Scrum Master 1
- CISSP - Certified Information System Security Professional (In Training)
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Quote
Too much analysis results in paralysis. Actions are weighed more than words.
Matthew Pinkney
Timeline
Security Control Assessor/Cyber Security Analyst
12 Solutions LLC
04.2018 - 11.2023
Scrum Master
Non Profit Organization (NPO)
02.2018 - Current
Quality Assurance Analyst
Home Depot
04.2015 - 06.2018
Associate of Science - Cyber Security
Washington College